Manifest

$ rpki-client -vvf rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft
File:                     34071A863A3C6EF2DD36795F45540E2FB68950A0.mft (raw, json)
Hash identifier:          46GBWPHGxBOYsg3+x6NZCJWdHyjHZrBdgKuhKlE7hHA=
Subject key identifier:   46:80:E5:76:DB:BB:6C:90:3D:13:F7:5D:76:25:A1:D7:03:69:12:FF
Authority key identifier: 34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0
Certificate issuer:       /CN=A91FA6830000/serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0
Certificate serial:       6867EB32090A968D9A74FCE00F7E2CC6021022B7
Authority info access:    rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer
Subject info access:      rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft
Manifest number:          0793
Signing time:             Sun 19 Oct 2025 18:32:52 +0000
Manifest this update:     Sun 19 Oct 2025 18:27:52 +0000
Manifest next update:     Mon 20 Oct 2025 19:20:52 +0000
Files and hashes:         1: 3130332e3132352e3233332e302f32342d3234203d3e2039333132.roa (hash: pZv8WRdNlBV4IKDx6bNv7oBg2N/5UFROImiToIit/aA=)
                          2: 323430333a666263303a613030323a3a2f34382d3438203d3e20323132353132.roa (hash: enaySFUpt7HUACHfd9TuXH57K0gEe6gPHzhcz9XFJXs=)
                          3: 3130332e3132352e3233322e302f32322d3234203d3e203433333537.roa (hash: AO++rM3N1jO7O7HYsegCBlM8+c2spUzQgRM1Fitv+rQ=)
                          4: 34071A863A3C6EF2DD36795F45540E2FB68950A0.crl (hash: IfdyFYFNuegvovDcsZnf5h/4lJDT3yNb4Nb5COKY3rw=)
                          5: 3130332e3132352e3233322e302f32342d3234203d3e2039333132.roa (hash: 5rh5xKoFim9+qzXuz9ue2E9gTTOhHmo70qMX7Q8lZTQ=)
                          6: 323430333a666263303a3a2f33322d3438203d3e2033323538.roa (hash: tXrN0zoKF82QapDtfGgfQ/sKCgpFN3PcfxbF24KevGM=)
                          7: 323430333a666263303a363030303a3a2f34382d3438203d3e20323132353132.roa (hash: SPVnXgzc6DdCcPNaKseycoy7ZTTw0qv3w3c7rqopVw0=)
                          8: 323430333a666263303a3a2f33322d3438203d3e203433333537.roa (hash: lWIr6sYh7jORalo3knn4O8Tkqys/QMzZOqOsz0HK/gg=)
                          9: 323430333a666263303a613030303a3a2f34382d3438203d3e20323132353132.roa (hash: hJxx3nr/lfwP0kEgV9nZ8LhD9nuKvmRGXnwzZAzg9w0=)
                          10: 323430333a666263303a613030313a3a2f34382d3438203d3e20323132353132.roa (hash: DNK4vnrgAUMBFTQF62of1cSQgwMSTE8r5u7W1r1aQzI=)
                          11: 3130332e3132352e3233322e302f32322d3234203d3e2033323538.roa (hash: cLW/biMRwR7zRrRPFacawZTNPUq9jmMexiFzyeHhVJ4=)
                          12: 323430333a666263303a3a2f33322d3438203d3e203233393539.roa (hash: cDTbMfGHTly+QeOfyQG+o4pg0zroCRCYVzgE6JjA/GY=)
                          13: 3130332e3132352e3233322e302f32322d3234203d3e203233393539.roa (hash: VZm+1A419bpjhNHk7oa8SlaXnBnjm4UoiyMj6yzbhMQ=)
Validation:               OK
Signature path:           rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl
                          rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Mon 20 Oct 2025 19:20:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            68:67:eb:32:09:0a:96:8d:9a:74:fc:e0:0f:7e:2c:c6:02:10:22:b7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A91FA6830000, serialNumber=34071A863A3C6EF2DD36795F45540E2FB68950A0
        Validity
            Not Before: Oct 19 18:27:52 2025 GMT
            Not After : Oct 20 19:20:52 2025 GMT
        Subject: CN=4680E576DBBB6C903D13F75D7625A1D7036912FF
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:88:21:a9:63:cc:19:45:7f:34:3f:8d:c9:b6:
                    0a:02:11:5c:2c:46:86:2d:81:84:ea:87:26:5f:8c:
                    67:de:64:a9:ed:08:17:7e:c8:8d:91:db:4c:d4:41:
                    d4:ae:1c:78:95:fb:e9:ee:e6:a6:d2:14:32:e1:8d:
                    4c:2b:06:83:24:c5:63:e7:a3:d5:18:d1:a2:9c:4e:
                    24:dc:5f:83:50:5a:94:b4:18:0c:0e:99:1e:23:84:
                    54:23:78:6d:00:e9:07:5a:fb:46:73:70:a9:76:c9:
                    5a:e5:cc:64:4f:af:1b:bd:44:f8:37:02:16:ce:ce:
                    44:94:89:e5:cd:26:4b:f3:2c:e5:66:25:e0:b3:58:
                    d1:de:5e:9d:ca:90:c0:5f:f5:29:ff:e9:09:2c:2b:
                    44:6e:62:36:d1:3c:c6:01:31:5d:54:16:b0:f4:1f:
                    a5:18:97:03:c8:3c:56:6a:27:51:a1:97:be:60:e8:
                    aa:9c:9e:b0:ce:27:f3:d7:2d:36:dd:ae:42:86:66:
                    7e:51:11:46:a3:e0:35:c1:c3:69:34:31:3c:3f:8c:
                    ba:fe:37:20:07:51:cf:bb:9b:6e:7d:cd:f5:74:79:
                    6d:32:37:60:73:b5:08:e8:95:16:8e:3f:df:a0:ee:
                    a7:af:b5:ae:de:64:c2:21:3f:a2:2d:65:2f:42:be:
                    37:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:80:E5:76:DB:BB:6C:90:3D:13:F7:5D:76:25:A1:D7:03:69:12:FF
            X509v3 Authority Key Identifier:
                keyid:34:07:1A:86:3A:3C:6E:F2:DD:36:79:5F:45:54:0E:2F:B6:89:50:A0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NAcahjo8bvLdNnlfRVQOL7aJUKA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.owl.net/rrdp/owl/0/34071A863A3C6EF2DD36795F45540E2FB68950A0.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5c:50:c7:0a:6e:cf:0a:13:dc:28:e7:01:33:99:1a:9a:0d:dd:
         77:74:ff:05:f4:f2:78:cc:63:ac:95:13:1c:82:a2:28:b1:c3:
         fa:7a:6b:17:8a:71:fa:bb:61:93:d0:20:d5:3d:08:30:5f:30:
         e1:fb:db:f1:8d:f6:a5:a7:39:e0:43:56:99:ee:8d:8b:67:a0:
         f3:5c:88:a7:ca:31:2b:2a:5c:31:5d:f0:db:28:b7:da:8e:25:
         9b:2d:24:c4:27:4c:cf:67:90:95:4f:63:a0:b2:62:ca:2b:78:
         b8:52:e0:19:34:a7:1e:09:4f:7f:ee:78:da:29:c3:be:b6:92:
         e3:26:dd:21:36:64:0a:5e:39:cb:45:9c:2f:62:c4:65:90:75:
         af:4a:a5:36:67:83:2a:b7:e9:2d:5b:e9:28:b1:af:43:65:07:
         1c:86:63:c1:f4:4c:a7:c3:81:16:02:00:6a:e9:40:0b:46:d4:
         1c:22:25:e6:07:60:56:8d:b1:1c:cf:d7:1e:52:9c:06:40:6f:
         35:64:6c:9a:96:c0:4d:42:e2:45:3c:7d:70:f6:b3:be:03:f0:
         00:28:86:5e:1d:b5:3a:0f:64:03:30:b0:fa:56:22:27:cc:1b:
         1d:64:cd:5d:af:fa:c0:22:ab:85:30:39:c5:cf:0b:64:4e:e5:
         66:cd:65:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:12:02 2025 by rpki-client